Built because the problem is real.
Chameleon came out of direct experience with the compliance gap that most data teams hit: customer data accumulates across warehouses, dbt models, SaaS tools, and analytics exports — and when a deletion request or audit arrives, nobody can answer where it all is or whether it was ever removed.
The standard approach is manual: check the application database, open a ticket for each downstream system, and hope nothing was missed. It does not scale, it does not produce evidence, and it fails the moment a regulator asks for proof.
Chameleon is the infrastructure layer that was missing. It keeps a live registry of where PII lives, watches for undeclared copies, and handles deletion in a way that produces cryptographic proof — not a closed ticket.
Discover where customer PII lives
Detect undeclared or ghost PII
Enforce warehouse policy
Execute deletion workflows
Prove deletion across systems
Deletion you can actually verify.
Most deletion workflows delete the source row and call it done. But the data already copied into staging tables, dbt models, backups, and SaaS systems is untouched. Chameleon encrypts PII at the point of ingestion, so when the encryption key is destroyed, every copy of that data becomes unreadable — warehouse, backups, derived models, all of it — without touching a single row.
The result is a signed certificate with a key fingerprint, a destruction timestamp, and a lineage summary of every system the data reached. That is the evidence format auditors and data protection authorities actually accept.